← back
CVE-2020-8150

CVE-2020-8150

EPSS 0.3%CWE-310
A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files.
Affected products
n/a · Nextcloud Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://seclists.org/fulldisclosure/2020/Dec/55http://seclists.org/fulldisclosure/2020/Dec/57http://seclists.org/fulldisclosure/2020/Dec/58https://hackerone.com/reports/742588https://nextcloud.com/security/advisory/?id=NC-SA-2020-039